The Cisco 100-105 PDF, 100-105 VCE and 100-105 exam questions and answers at Lead2pass are written and prepared by Cisco affiliated trainers and lecturers with decades of experience in the IT field. This ensures that you are equipped with the latest and most current information to give you a better chance of passing the Cisco 100-105 exam.

QUESTION 61When configuring NAT, the Internet interface is considered to be what?

A. localB. insideC. globalD. outside

Answer: DExplanation:Network address translation or NAT requires the Internet to be considered as an outside interface else it won’t serve the purpose it intends to.

QUESTION 62The ip helper-address command does what?

A. assigns an IP address to a hostB. resolves an IP address from a DNS serverC. relays a DHCP request across networksD. resolves an IP address overlapping issue

Answer: CExplanation:When the DHCP client sends the DHCP request packet, it doesn’t have an IP address. So it uses the all-zeroes address, 0.0.0.0, as the IP source address. And it doesn’t know how to reach the DHCP server, so it uses a general broadcast address, 255.255.255.255, for the destination. So the router must replace the source address with its own IP address, for the interface that received the request. And it replaces the destination address with the address specified in the ip helper-address command. The client device’s MAC address is included in the payload of the original DHCP request packet, so the router doesn’t need to do anything to ensure that the server receives this information.

QUESTION 63Refer to the exhibit. The network administrator made the entries that are shown and then saved the configuration. From a console connection, what password or password sequence is required for the administrator to access privileged mode on Router1?

A. ciscoB. sanfranC. sanjoseD. either cisco or sanfranE. either cisco or sanjoseF. sanjose and sanfran

Answer: BExplanation:The enable secret password takes precedence over the enable password, so sanfran will be used.

A. to require the user to enter an encrypted password during the login processB. to prevent the vty, console, and enable passwords from being displayed in plain text in the configuration filesC. to encrypt the enable secret passwordD. to provide login encryption services between hosts attached to the router

Answer: BExplanation:Certain types of passwords, such as Line passwords, by default appear in clear text in the configuration file. You can use the service password-encryption command to make them more secure. Once this command is entered, each password configured is automatically encrypted and thus rendered illegible inside the configuration file (much as the Enable/Enable Secret passwords are). Securing Line passwords is doubly important in networks on which TFTP servers are used, because TFTP backup entails routinely moving config files across networks–and config files, of course, contain Line passwords.

QUESTION 65What is the effect of using the service password-encryption command?

A. Only the enable password will be encrypted.B. Only the enable secret password will be encrypted.C. Only passwords configured after the command has been entered will be encrypted.D. It will encrypt the secret password and remove the enable secret password from the configuration.E. It will encrypt all current and future passwords.

Answer: EExplanation:Encryption further adds a level of security to the system as anyone having access to the database of passwords cannot reverse the process of encryption to know the actual passwords which isn’t the case if the passwords are stored simply.

QUESTION 66An administrator has connected devices to a switch and, for security reasons, wants the dynamically learned MAC addresses from the address table added to the running configuration. What must be done to accomplish this?

A. Enable port security and use the keyword sticky.B. Set the switchport mode to trunk and save the running configuration.C. Use the switchport protected command to have the MAC addresses added to the configuration.D. Use the no switchport port-security command to allow MAC addresses to be added to the configuration.

Answer: AExplanation:One can configure MAC addresses to be sticky. These can be dynamically learned or manually configured, stored in the address table, and added to the running configuration. If these addresses are saved in the configuration file, the interface does not need to dynamically relearn them when the switch restarts, hence enabling security as desired.

QUESTION 67A company has placed a networked PC in a lobby so guests can have access to the corporate directory. A security concern is that someone will disconnect the directory PC and re-connect their laptop computer and have access to the corporate network. For the port servicing the lobby, which three configuration steps should be performed on the switch to prevent this? (Choose three.)

A. Enable port security.B. Create the port as a trunk port.C. Create the port as an access port.D. Create the port as a protected port.E. Set the port security aging time to 0.F. Statically assign the MAC address to the address table.G. Configure the switch to discover new MAC addresses after a set time of inactivity.

Answer: ACFExplanation:If port security is enabled and the port is only designated as access port, and finally static MAC address is assigned, it ensures that even if a physical connection is done by taking out the directory PC and inserting personal laptop or device, the connection cannot be made to the corporate network, hence ensuring safety.

QUESTION 68Why would a network administrator configure port security on a switch?

A. to prevent unauthorized Telnet access to a switch portB. to prevent unauthorized hosts from accessing the LANC. to limit the number of Layer 2 broadcasts on a particular switch portD. block unauthorized access to the switch management interfaces

Answer: BExplanation:You can use the port security feature to restrict input to an interface by limiting and identifying MAC addresses of the stations allowed to access the port. When you assign secure MAC addresses to a secure port, the port does not forward packets with source addresses outside the group of defined addresses. If you limit the number of secure MAC addresses to one and assign a single secure MAC address, the workstation attached to that port is assured the full bandwidth of the port. If a port is configured as a secure port and the maximum number of secure MAC addresses is reached, when the MAC address of a station attempting to access the port is different from any of the identified secure MAC addresses, a security violation occurs. Also, if a station with a secure MAC address configured or learned on one secure port attempts to access another secure port, a violation is flagged.

QUESTION 69How can you ensure that only the MAC address of a server is allowed by switch port Fa0/1?

A. Configure port Fa0/1 to accept connections only from the static IP address of the server.B. Configure the server MAC address as a static entry of port security.C. Use a proprietary connector type on Fa0/1 that is incomputable with other host connectors.D. Bind the IP address of the server to its MAC address on the switch to prevent other hosts from spoofing the server IP address.

Answer: BExplanation:When the MAC address is configured as static entry, no other address is allowed.

QUESTION 70Refer to the exhibit. A network administrator has configured a Catalyst 2950 switch for remote management by pasting into the console the configuration commands that are shown in the exhibit. However, a Telnet session cannot be successfully established from a remote host. What should be done to fix this problem?

A. Change the first line to interface fastethernet 0/1.B. Change the first line to interface vlan 0/1.C. Change the fifth line to ip default-gateway 192.168.17.241.D. Change the fifth line to ip route 0.0.0.0 0.0.0.0 192.168.17.1.E. Change the sixth line to line con 0.

Answer: CExplanation:The default gateway for remote session is 192.168.17.241 and not the one given in the exhibit.

QUESTION 72Refer to the exhibit. An administrator cannot connect from R1 to R2. To troubleshoot this problem, the administrator has entered the command shown in the exhibit. Based on the output shown, what could be the problem?

A. The serial interface is configured for half duplex.B. The serial interface does not have a cable attached.C. The serial interface has the wrong type of cable attached.D. The serial interface is configured for the wrong frame size.E. The serial interface has a full buffer.

Answer: CExplanation:since the output is not forthcoming it shows that the type of cable attached is wrong, though the cable is connected since it shows the cable type. According to the figure DTE cable should connect to R1 on interface but while examining using show controllers serial 0/0 command it showing that a DCE is connected so the wrong type of cable is being used.

QUESTION 73Refer to the exhibit. A TFTP server has recently been installed in the Atlanta office. The network administrator is located in the NY office and has made a console connection to the NY router. After establishing the connection they are unable to backup the configuration file and IOS of the NY router to the TFTP server. What is the cause of this problem?

A. The NY router has an incorrect subnet mask.B. The TFTP server has an incorrect IP address.C. The TFTP server has an incorrect subnet mask.D. The network administrator computer has an incorrect IP address.

Answer: CExplanation:The subnet mast of the TFTP server needs to be in tune with the other network requirements else it wont be possible.

QUESTION 74If a host experiences intermittent issues that relate to congestion within a network while remaining connected, what could cause congestion on this LAN?

Answer: BExplanation:A broadcast storm can consume sufficient network resources so as to render the network unable to transport normal traffic.

QUESTION 75Refer to the exhibit. The junior network support staff provided the diagram as a recommended configuration for the first phase of a four-phase network expansion project. The entire network expansion will have over 1000 users on 14 network segments and has been allocated this IP address space.

192.168.1.1 through 192.168.5.255192.168.100.1 through 192.168.100.255

What are three problems with this design? (Choose three.)

A. The AREA 1 IP address space is inadequate for the number of users.B. The AREA 3 IP address space is inadequate for the number of users.C. AREA 2 could use a mask of /25 to conserve IP address space.D. The network address space that is provided requires a single network-wide mask.E. The router-to-router connection is wasting address space.F. The broadcast domain in AREA 1 is too large for IP to function.

Answer: ACEExplanation:The given IP addresses of areas 1 and 3 along with network masks of 24 cannot accommodate 500 users so are inadequate, while the area 2 is having over capacity so its network mask can be reduced to 25 to accommodate the only 60 users it has.

QUESTION 76Given an IP address of 192.168.1.42 255.255.255.248, what is the subnet address?

Answer: CExplanation:248 mask uses 5 bits (1111 1000)42 IP in binary is (0010 1010)The base subnet therefore is the lowest binary value that can be written without changing the output of an AND operation of the subnet mask and IP …1111 1000 AND0010 1010 equals0010 1000 – which is .40/24 is standard class C mask.adding the 5 bits from the .248 mask gives /29

QUESTION 77Which OSI layer header contains the address of a destination host that is on another network?

A. applicationB. sessionC. transportD. networkE. data linkF. physical

Answer: DExplanation:Only network address contains this information. To transmit the packets the sender uses network address and datalink address. But the layer 2 address represents just the address of the next hop device on the way to the sender. It is changed on each hop. Network address remains the same.

Answer: DExplanation:The Internet Protocol Suite, TCP/IP, is a suite of protocols used for communication over the internet. The TCP/IP model was created after the OSI 7 layer model for two major reasons. First, the foundation of the Internet was built using the TCP/IP suite and through the spread of the World Wide Web and Internet, TCP/IP has been preferred. Second, a project researched by the Department of Defense (DOD) consisted of creating the TCP/IP protocols. The DOD’s goal was to bring international standards which could not be met by the OSI model. Since the DOD was the largest software consumer and they preferred the TCP/IP suite, most vendors used this model rather then the OSI. Below is a side by side comparison of the TCP/IP and OSI models.TCP/IP ModelVS.OSI Model Application Layer 7ApplicationLayer 6PresentationLayer 5Session Transport Layer 4Transport Internet Layer 3Network Network Access Layer 2Data LinkLayer 1Physical

QUESTION 79Which protocol uses a connection-oriented service to deliver files between end systems?

A. TFTPB. DNSC. FTPD. SNMPE. RIP

Answer: CExplanation:FTP is an acronym for File Transfer Protocol. As the name suggests, FTP is used to transfer files between computers on a network. You can use FTP to exchange files between computer accounts, transfer files between an account and a desktop computer, or access online software archives

QUESTION 80Refer to the exhibit. If the hubs in the graphic were replaced by switches, what would be virtually eliminated?

Answer: CExplanation:Modern wired networks use a network switch to eliminate collisions. By connecting each device directly to a port on the switch, either each port on a switch becomes its own collision domain (in the case of half duplex links) or the possibility of collisions is eliminated entirely in the case of full duplex links.

Lead2pass guarantees your 100-105 exam success with our exam resources. Our 100-105 braindumps are the latest and developed by experienced IT certification professionals working in today’s prospering companies and data centers. All our 100-105 braindumps include 100-105 real exam questions which guarantee your 100% success of 100-105 exam in your first try.